================================================================ INFOSECFOLLOW -- security, markets, business, pittsburgh Thursday, June 18, 2026 - 6:06 AM EDT ================================================================ F5 races to patch a critical, unauthenticated remote-code flaw in the ubiquitous NGINX web server even as the FortiBleed dump exposes VPN credentials for 73,932 Fortinet firewalls worldwide. CONTENTS: Emerging Trends and Key Updates | Security | Business and Politics | Pittsburgh | Sports | Reading | Markets EMERGING TRENDS AND KEY UPDATES ---------------------------------------------------------------- * [TREND] The Gentlemen gang's GentleKiller disables 400+ security processes while the FortiBleed dump exposes 73,932 Fortinet firewalls and a crypto clipper swaps wallet addresses on clipboards. see: Gentlemen Ransomware Ships EDR Killers; FortiBleed Credential Leak; Crypto Clipper Worm Campaign * [TREND] Identity tracking spreads from the state into the browser as ICE buys immigrants' tax identifiers, the UK scans asylum-seekers' faces, and Google eyes European IP addresses. see: Governments and Google Widen Surveillance * [TREND] AI moves into vulnerability defense as AWS opens its Continuum preview and Microsoft expands the agentic MDASH detection system across Windows and Azure. see: AI Moves Into Vulnerability Defense * [UPDATE (new)] F5 shipped June 18 fixes for critical NGINX flaws that let a remote, unauthenticated attacker crash the server and possibly run arbitrary code. see: Critical NGINX Flaw and Secure Boot Deadline * [TREND] Geopolitics swings as the US and Iran sign a war-ending deal, the Fed signals a possible rate increase, and Ukraine launches its largest drone strike on Moscow. see: US and Iran Sign War-Ending Deal; Fed Signals a Rate Increase May Come Next; Ukraine Hits Moscow in Largest Drone Strike * [UPDATE (updated)] OpenAI's losses grew nearly eightfold in 2025 with spending hitting $34 billion, deepening doubts about any path to profitability. see: Exclusive: OpenAI Losses Increased Nearly 8X in 2025, With Spending Hitting $34 Billion SECURITY ---------------------------------------------------------------- 1. GOVERNMENTS AND GOOGLE WIDEN SURVEILLANCE Policy and Regulation · [policy, privacy] Latest developments: A $10 million ICE procurement that 404 Media reviewed shows the agency buying immigrants' tax-identifier records from a data broker—a move Senator Ron Wyden called an attempt to skirt a court order—while the UK Home Office presses ahead with scanning asylum-seekers' faces for age estimates despite its own error-prone test results, and Google said it will start using UK, EEA, and Swiss users' IP addresses for ad personalization on August 3, 2026. The moves expand identity tracking across immigration enforcement, asylum processing, and ad targeting; the UK's Information Commissioner's Office is weighing new consent rules as privacy advocates question the legality. - 404 Media: https://www.404media.co/ice-appears-to-be-buying-immigrants-tax-identifiers-from-a-data-broker/ - Wired Security: https://www.wired.com/story/facial-age-estimate-uk-asylum-seekers/ - BleepingComputer: https://www.bleepingcomputer.com/news/security/google-to-use-uk-and-eu-user-ip-addresses-for-ad-personalization/ 2. AI MOVES INTO VULNERABILITY DEFENSE AI Security · [ai, vulnerability] Latest developments: AWS opened a gated preview of Continuum, a model-agnostic system that triages and resolves code vulnerabilities across their lifecycle, Microsoft detailed its agentic vulnerability-detection system MDASH now running across Windows, Azure, and identity, and Cisco Talos showed local AI agents scripting the VB6 disassembler vbdec through a live COM interface for reverse engineering. Vendors are wiring frontier models directly into vulnerability discovery and remediation pipelines, promising faster fixes while raising fresh questions about oversight of agentic tooling; teams piloting these systems should validate AI findings before acting. - Help Net Security: https://www.helpnetsecurity.com/2026/06/18/aws-continuum-for-code-vulnerabilities/ - Microsoft Security Blog: https://www.microsoft.com/en-us/security/blog/2026/06/17/beyond-the-benchmark-advancing-security-at-ai-speed/ - Cisco Talos: https://blog.talosintelligence.com/scripting-the-disassembler/ 3. CRITICAL NGINX FLAW AND SECURE BOOT DEADLINE Vulnerabilities and Exploits · [patch, rce] Latest developments: F5 shipped fixes on June 18 for critical NGINX vulnerabilities that let a remote, unauthenticated attacker crash the server and potentially run arbitrary code, while the Secure Boot keys that vouch for Windows and Linux boot sequences begin to expire. NGINX fronts a large share of the world's websites and proxies, so an unauthenticated remote-code path threatens internet-facing infrastructure broadly; administrators should apply F5's June patches and rotate expiring Secure Boot keys before the boot chain loses its trust anchor. - SecurityWeek: https://www.securityweek.com/f5-patches-critical-high-severity-nginx-vulnerabilities/ - Ars Technica Security: https://arstechnica.com/security/2026/06/windows-and-linux-users-the-deadline-to-update-secure-boot-keys-is-near/ 4. GENTLEMEN RANSOMWARE SHIPS EDR KILLERS Ransomware and Cybercrime · [ransomware] Latest developments: ESET detailed GentleKiller, a toolset the Gentlemen ransomware-as-a-service gang builds in-house to disable more than 400 security processes across 48 endpoint products, then hands directly to affiliates—an arrangement a May 2026 internal leak confirmed while exposing the gang's leader. Most ransomware crews leave endpoint-detection evasion to affiliates, while Gentlemen centralizes it and raises the odds that detection goes dark before encryption; defenders should watch for tampering with security agents and harden EDR self-protection. - Help Net Security: https://www.helpnetsecurity.com/2026/06/18/eset-gentlemen-edr-killers/ 5. FORTIBLEED CREDENTIAL LEAK Data Breaches · [breach, credentials] Latest developments: BleepingComputer quantified the FortiBleed dump at 73,932 Fortinet and FortiGate firewall URLs, and Dark Reading reported attackers have compromised more than 30,000 of those devices across nearly 200 countries while compiling a verified list of working credentials. The leak exposes FortiGate VPN credentials at organizations including Oracle, Lenovo, FedEx, a NATO contractor, and Fortinet itself; affected operators should assume compromise, reset credentials, and hunt for unauthorized VPN access. - BleepingComputer: https://www.bleepingcomputer.com/news/security/fortibleed-leak-exposes-fortinet-vpn-credentials-for-73-000-devices/ - Dark Reading: https://www.darkreading.com/cyberattacks-data-breaches/sweeping-credential-harvesting-heist-compromises-30k-fortinet-devices - Ars Technica Security: https://arstechnica.com/security/2026/06/massive-breach-spills-credentials-for-thousands-of-sensitive-networks/ 6. CRYPTO CLIPPER WORM CAMPAIGN Ransomware and Cybercrime · [malware, cryptocurrency] Latest developments: Microsoft Threat Intelligence and Check Point Research detailed a cryptocurrency clipper that swaps wallet addresses on the clipboard, spreads worm-like, talks to its operators over Tor, and installs a lightweight backdoor, promoting its lures through paid posts on legitimate news sites, fake reviews, AI-narrated YouTube videos, GitHub and SourceForge projects, and VirusTotal comments. The malware steals cryptocurrency by replacing copied wallet addresses and establishes persistent access for follow-on activity; users should verify pasted wallet addresses and avoid software promoted through unverified GitHub, SourceForge, and YouTube channels. - Microsoft Security Blog: https://www.microsoft.com/en-us/security/blog/2026/06/17/crypto-clipper-uses-tor-worm-like-propagation-for-persistence-control/ - The Hacker News: https://thehackernews.com/2026/06/crypto-clipper-campaign-abuses-fake.html BUSINESS AND POLITICS ---------------------------------------------------------------- * US and Iran Sign War-Ending Deal Latest developments: The two sides signed the memorandum of understanding Wednesday, days ahead of the planned June 19 ceremony in Switzerland, and it took immediate effect; oil fell more than 2% as traders bet on a fast reopening of the Strait of Hormuz. President Trump and Iran signed an agreement to end the war that began February 28, with Trump pledging to release frozen Iranian funds and ease banking and transport sanctions while Tehran keeps its ballistic missiles; Pakistan's prime minister, who mediated, confirmed the accord and the deal reopens the Strait of Hormuz, the waterway carrying roughly a fifth of global oil shipments. - FT World: https://www.ft.com/content/d4f89b6b-c213-4550-924b-a9ae45e24c37 - WSJ Markets: https://www.wsj.com/finance/commodities-futures/oil-falls-on-prospects-of-fast-reopening-of-strait-of-hormuz-ce60a695?mod=rss_markets_main * Fed Signals a Rate Increase May Come Next Latest developments: A day after holding rates and dropping its easing bias, Federal Reserve officials signaled their next move could be a rate increase before year-end, pushing the dollar to an 11-week high and pulling gold lower. At Chair Kevin Warsh's debut meeting the Federal Open Market Committee held its benchmark rate steady, and the hawkish turn that followed has lifted the dollar against a basket of currencies to its highest in 11 weeks and weighed on gold, even as falling oil eases inflation worries. - WSJ Markets: https://www.wsj.com/finance/currencies/asian-currencies-consolidate-may-be-weighed-by-fed-rate-hike-expectations-50220365?mod=rss_markets_main - WSJ Markets: https://www.wsj.com/finance/commodities-futures/gold-rises-after-fed-leaves-rates-unchanged-aacdebef?mod=rss_markets_main - FT World: https://www.ft.com/content/2fb2e603-0934-4f99-af71-1c1d06d5be1e * Ukraine Hits Moscow in Largest Drone Strike Latest developments: Ukraine launched nearly 200 drones at Moscow, its largest strike on the Russian capital, with several hitting the city's biggest oil refinery. Ukraine sent close to 200 drones against Moscow, striking the capital's largest oil refinery and marking a sharp escalation in the war with Russia. - FT World: https://www.ft.com/content/c2514fd8-d5d8-4bde-ad64-1167638d188b PITTSBURGH ---------------------------------------------------------------- Weather: Today: Chance Rain Showers then Mostly Sunny, high 84F. Tonight: Partly Cloudy, low 59F. Juneteenth: Sunny, high 78F. Business: * Leechburg Schools Raise Taxes 3% Latest developments: The Leechburg Area School District board approved a 3% property-tax increase and a new assessment formula Wednesday. The Leechburg Area School District board passed a 3% property-tax increase along with an assessment formula that, for the first time in years, balances residents' tax bills across the district's Armstrong and Westmoreland county communities. - TribLive: https://triblive.com/local/valley-news-dispatch/leechburg-area-school-district-approves-3-tax-increase-new-assessment-formula/ * PublicSource Maps the Farmers Market Scene Latest developments: PublicSource published an interactive map of the region's farmers markets and a feature on the work behind them on June 18. PublicSource mapped the Pittsburgh region's farmers markets and profiled the vetting behind them, with South Side Market Manager Gianna Donati describing how she questions every vendor to confirm each one grows its own produce or handmakes its goods. - PublicSource: https://www.publicsource.org/pittsburgh-farmers-market-scene/ - PublicSource: https://www.publicsource.org/pittsburgh-area-farmers-markets-map/ Around town: * Storm Threat Downgraded for Thursday Latest developments: The National Weather Service in Pittsburgh lowered its Thursday projections for tornadoes and damaging winds, and the morning storms passed mostly south of the city. Showers and storms crossed Western Pennsylvania early Thursday, June 18, with wind gusts of 40 to 50 mph possible east of Pittsburgh and more than an inch of rain in spots; Duquesne Light had urged customers to prepare for outages. - TribLive: https://triblive.com/local/westmoreland/nws-in-pittsburgh-lowering-projections-of-severe-weather-thursday/ - WTAE: https://www.wtae.com/article/severe-weather-alert-day-morning-storms-windy-all-day-long/71623032 * Penn Township Rejects Penn Borough Merger Latest developments: Penn Township commissioners voted Wednesday against merging with neighboring Penn Borough. Penn Township's commissioners in Westmoreland County turned down a merger with the small adjacent Penn Borough, leaving the borough on its own for now. - TribLive: https://triblive.com/local/westmoreland/penn-township-commissioners-say-no-to-merging-with-penn-borough/ * Kratom Spreads as Pennsylvania Plays Catch-Up Latest developments: The Post-Gazette reported June 18 that kratom use is rising across Pennsylvania while doctors and lawmakers work to understand and regulate it. As the herbal supplement kratom spreads through Allegheny County and the rest of Pennsylvania, physicians and state lawmakers are scrambling to study and regulate a substance still sold largely without oversight. - Pittsburgh Post-Gazette: https://www.post-gazette.com/news/health/2026/06/18/kratom-allegheny-county-pa/stories/202606210023 Events: * Henry Koerner Exhibit in Homestead Latest developments: Rivers of Steel's exhibition Paintable Pittsburgh: The Art of Henry Koerner continues at the Bost Building in Homestead through July 31. Paintable Pittsburgh: The Art of Henry Koerner runs daily 11 a.m. to 4 p.m. through Friday, July 31, at the Bost Building, 623 East Eighth Avenue in Homestead; admission is free but requires an RSVP at riversofsteel.com. - Pittsburgh City Paper: https://www.pghcitypaper.com/listings/this-weeks-top-events/pittsburghs-top-events-thu-june-18-wed-june-24/ SPORTS ---------------------------------------------------------------- Pirates (38-37) Wed Jun 17 · Pirates 12 · Athletics 4 · Final Ryan O'Hearn knocks in career-high 6 runs as Pirates roll to 12-4 victory over Athletics https://plaintextsports.com/mlb/2026-06-17/pit-ath Up Next · Pirates @ Rockies · Fri Jun 19, 8:40 PM https://plaintextsports.com/mlb/2026-06-19/pit-col Around the Teams: * Washington Talks $42M Extension on Heyward Podcast Latest developments: On Not Just Football with Cam Heyward, tight end Darnell Washington broke down his new four-year, $42 million Steelers extension. Darnell Washington, the 6-foot-7 tight end, joined the Not Just Football podcast fresh off his four-year, $42 million extension to discuss the contract, the departure of Connor Heyward, his back-to-back national titles at Georgia, and fatherhood. - Not Just Football with Cam Heyward: https://www.youtube.com/watch?v=bI9k0IEdvzA * Spears-Jennings's 4.32 Reshaped His Draft Stock Latest developments: The Post-Gazette detailed how rookie safety Robert Spears-Jennings's 4.32-second 40-yard dash at the NFL combine changed how teams viewed him. Steelers rookie safety Robert Spears-Jennings credits a 4.32-second 40-yard dash at the NFL combine with lifting his draft trajectory, a turn the Post-Gazette traced in detail. - Post-Gazette Steelers: https://www.post-gazette.com/sports/steelers/2026/06/18/40yarddash-nfl-combine-spears-jennings-murphy-draft/stories/202606170001 * Film Room Likes Rookie Gabriel Rubio Latest developments: A Post-Gazette film breakdown rated rookie defensive lineman Gabriel Rubio a solid run defender. In its film room, the Post-Gazette judged Steelers rookie defensive lineman Gabriel Rubio, out of Notre Dame, a sturdy run defender on the strength of his violent hands. - Post-Gazette Steelers: https://www.post-gazette.com/sports/steelers/2026/06/17/steelers-film-room-gabriel-rubio-notre-dame-vega-ioane-derrick-harmon/stories/202606170036 READING ---------------------------------------------------------------- * Stratechery -- An Interview with Michael Morton About E-Commerce in the Age of AI Ben Thompson interviews Michael Morton about how AI reshapes e-commerce, covering unfalsifiable bear cases, distribution versus referral models, grocery, and autonomous vehicles. https://stratechery.com/2026/an-interview-with-michael-morton-about-e-commerce-in-the-age-of-ai/ * Ed Zitron -- Exclusive: OpenAI Losses Increased Nearly 8X in 2025, With Spending Hitting $34 Billion Zitron publishes financials showing OpenAI's losses grew nearly eightfold in 2025 as spending reached $34 billion, arguing the company still has no path to profitability. https://www.wheresyoured.at/exclusive-openai-financials/ * Cal Newport -- AI Isn't Breaking Work. It's Already Broken. Newport argues that knowledge work was already dysfunctional before AI arrived, responding to a Financial Times interview with Rebecca Hinds of the Work AI Institute about a survey of 6,000 workers. https://calnewport.com/ai-isnt-breaking-work-its-already-broken/ MARKETS (weekly average, change vs prior week) ---------------------------------------------------------------- S&P 500 7,462.30 ▲ +0.8% Dow 51,442.85 ▲ +1.3% Nasdaq 26,156.09 ▲ +1.1% WTI crude 81.24 ▼ -10.4% EUR/USD 1.1584 ▲ +0.2% GBP/USD 1.3414 ▲ +0.3% USD/JPY 160.25 ▲ +0.1% ================================================================ Generated 2026-06-18 06:06 EDT. Sources: 24 security feeds; 9 Pittsburgh feeds; 4 Pittsburgh arts and events feeds; 6 Pittsburgh sports beat and podcast feeds; the Wall Street Journal, the Economist, and the Financial Times; and Ed Zitron, Stratechery, Cal Newport. Markets from Yahoo Finance, weather from the NWS, scores from ESPN. Summaries are AI-generated from the linked reporting; verify at the sources. ================================================================